HOME BRIDGE SYSTEM AND METHOD OF DELIVERING CONFIDENTIAL ELECTRONIC FILES
A private document delivery system and method includes a home bridge computer configured to securely deliver an electronic document over a computer network. The home bridge computer combines SSL security, authentication, and direct data transfer in a link delivery system to maintain security of private electronic documents. The private electronic documents and messages transmitted via the home bridge computer are not stored during transit on the computer network, and no third parties to the message receive a permanent copy of the message. The systems and methods also include signaling mechanisms configured to notify the receiving computer that the electronic document is awaiting delivery. The system and method includes a network registry configured to verify the receiving computer's identity with a protocol specified by the sending computer and to provide access instructions to the receiving computer with which the receiving computer locates the home bridge and retrieves the private message.
This application claims priority to U.S. Provisional Patent Application No. 61/474,511, filed on Apr. 12, 2011, the entire contents of which are incorporated herein by reference. This application is a continuation-in-part application of, and also claims priority to, U.S. patent application Ser. No. 13/097,922, filed on Apr. 29, 2011, the entire contents of which are incorporated herein by reference.
TECHNICAL FIELDThis technology generally relates to computer security and more specifically to electronically delivering confidential documents, messages, and attachments.
BACKGROUNDElectronic mail (e-mail) systems are used to compose, send, and receive messages between computing devices over a computer network. Authors and recipients use e-mail systems to exchange digital messages over computer networks such as the Internet. E-mail may be the most heavily used feature of the Internet. Millions of people send and receive e-mail every day. When a user sends an email message, an Internet standard for electronic mail, such as Simple Mail Transfer Protocol (SMTP) sends the message to a mail server for relaying. The transmitted message is broken into packets over a transmission control protocol (TCP) connection, and the Internet protocol (IP) delivers the packets to the proper location(s), and the TCP then reassembles the message at the receiving computing device so that a recipient can read the message.
E-mail messages can include one or more attachments, in the form of documents or files. When sending email messages with attached documents or files, the attachments and files are often encoded using an Internet standard such as Multipurpose Internet Mail Extensions (MIME). MIME extends the format of e-mail to support non-standard character sets, non-text attachments, messages bodies with multiple parts, header information, and the like. When the email message is received by the recipient, the attachment(s) are decoded in a similar fashion.
In the past, electronic mail transmission and delivery was not secure. Transmission and delivery of email messages was often routed through intermediate relay points, such as mail submission agents, DNS servers, message transfer agents, message delivery agents, and other servers used to bridge smaller networks. Often, persistent copies of the email message are made and potentially stored at the intermediate relay points. Nefarious characters could read email messages when these messages traveled on public networks. Other ne'er do wells could intercept email messages and change the contents of the message between the time the sender composes the message and the time the recipient reads it. Encrypting email messages by scrambling the message provided a measure of success in ensuring that only the sender and receiver could read the messages. One type of encryption uses software keys with which to encrypt email messages. The keys include a public key and a private key. The public key is available for anyone to use to encrypt the email message when sending it, but only a recipient that holds a private key is able to decrypt the email message to read it. In practice, the communication can start with one side generating and sending a symmetric “session” key encrypted with a known public key of a recipient. Only the recipient can decrypt this message, so the session key is “safe” as it is transmitted in encrypted form. Once the recipient receives the session key, the sender and the recipient can use the session key to apply the encryption algorithm to send and receive email messages to and from each other. The email messages are sent over the computer network. While the email is on the computer network, the email is encrypted so that any shady character that reads the email will not be able to understand it.
When verifying that the contents of a message were written by a particular user and unaltered by any other user, it is necessary to agree upon a signature and hash algorithm. The signature is used to verify the authenticity of the message, and the hash algorithm is used to verify the integrity of the message.
For signature algorithms, asymmetric algorithms are typically used. These algorithms utilize a public key and a secret key. A signature algorithm combined with a secret key allows someone to generate a digital signature for the contents of a message. The party that anticipates receiving an email message creates the public key and the associated secret key. When another party wants to send a secure email to the creator of the keys, that party encrypts the email using the recipient's public key and sends the message. The recipient decrypts the message using the private key. The need to exchange asymmetric key pair information prior to sending a secure email creates network friction that has restricted secure email adoption to a very small specialized market. A signature algorithm combined with a public key allows someone to verify the digital signature for a message. Signature algorithms are one way functions. A user cannot reconstruct the input to a signature function by looking at its output.
Hash algorithms are also called message digest algorithms. These algorithms compute a checksum on their input; no keys are involved. Hash algorithms are also one way functions, and a robust hash algorithm is one in which very similar inputs produce dramatically different outputs. For example, if even a single bit of the message file is altered or corrupted in transit, the hash value should be very different.
Digital certificates also provide an additional level of security. Digital certificates use a digital signature to bind a public key with an identity. The certificate can be used to verify that a public key belongs to a particular individual and that individual is who he says he is. Digital certificates place information on a sender or a recipient's computer and use encryption to create a unique digital certificate for that person from the stored information. When that person goes to a web site or sends an email, the digital certificate is presented to the site or attached to the email, and the certificate verifies that the user is who he claims to be.
However, not all email programs are good at reading signed or encrypted email. An additional encryption/decryption piece of software is required to provide this functionality. Further, if a recipient does not have a valid certificate, or has conflicting or unsupported encryption capabilities, the email message will not be properly received or viewed.
Also, many e-mail systems and methods do not provide verification that an electronic message was received by the intended recipient nor do they provide the sender of the email with an authentication message to indicate that the delivered message was not intercepted or altered. In these current email systems, the message sender cannot demonstrate that the intended receiver actually received the encrypted message sent. The server from which the email was originally sent has to trust that the system and user requesting an encryption key associated with the email previously transmitted actually has the message that corresponds to the encryption key. Confidential email with suitable tracking verification and authentication is not provided. Additionally, private messaging—that is, the ability to send messages without others knowing you are doing so—is not possible with current messaging schemes.
A secure email program should be nonintrusive and transparent. Different approaches have been used in the past to provide secure email transmission and delivery.
SUMMARYIn this disclosure, many of the examples discuss systems and methods used to provide, send, and deliver documents between computing devices on disparate networks. However, it should be understood that the systems and techniques in accordance with the claimed invention can also provide secure transmission, reception, and storage of electronic files and documents within a single computer or a single computer network, depending upon the sending computer and the receiving computer. Additionally, multiple receiving computers can be employed, such as when a secure electronic mail message is sent to multiple recipients, for example.
One example of the claimed invention is a system and method for delivering confidential e-mail messages and attachments that combines secure socket layer security, authentication, and direct data transfer with a link delivery system. The system protects e-mail messages from unwanted or unauthorized third parties. With the system and method of the claimed invention, only the sender and the intended recipient have a copy of the message. The e-mails are not stored on a server. Instead, all communications are routed through a home bridge appliance, ensuring the messages are always private. The home bridge can be a plug computer or a small form factor server and can be powered up at all times. The home bridge appliance can connect directly to a modem and act as a personal digital mailbox for e-mail communications. A memory device can be connected to the home bridge to provide additional storage capacity. Users can choose an appropriate physical storage location for the electronic communications and files where they will remain safeguarded until the user provides access to them.
One example of the claimed invention is a system and method for delivering confidential e-mail messages and attachments by establishing a persistent direct path between the sending computer and the receiving computer through a persistent home bridge appliance so that no third parties receive permanent or persistent copies of the confidential documents. The system and method establishes a direct path dynamically from the home bridge appliance to the receiving computer so that the receiving computer does not need to be a member of the sender's peer network, such as a private messaging network or the like. Additionally, because the private message is stored on the home bridge until it is delivered, the sending computer does not need to be on-line when delivery is made. Similarly, a home bridge device can be employed by the receiving computer to provide always-on capabilities to receive private messages when the receiving computer is not on-line. For example, the user of the receiving computer can view and edit messages on the home bridge device from any network location.
Peer networks are collections of computers that are registered on a central server or servers so that direct connections can be made between two of the registered computers. In the case of the claimed invention, private messages can also be sent between sending and receiving computers that are not on the same peer network. In one example, the receiving computer receives a notification with a link that establishes a direct connection to the home bridge appliance. This system and method provides a high degree of privacy by maintaining physical possession of the persisted data (e.g., email messages and attachments) strictly with the sending computer or the home bridge appliance and the receiving computer. Because no copies of the e-mail message or attachment(s) are ever persisted with outside parties, there is no need for encryption at rest. As such, there is no need for cumbersome asymmetrical key encryption.
The systems and methods of the claimed invention provide a secure manner for delivering confidential electronic files and documents, such as e-mail messages and attachments, by notifying a recipient that a message is waiting to be retrieved. Identification information is received from the recipient and verified by the home bridge appliance. A specific verification protocol can be identified and employed. Once the recipient is verified, access instructions are provided to the recipient. A direct connection is established dynamically, and the secure private transmission and delivery of the private electronic document is effected via the direct connection.
When the recipient is not a member of the sender's peer network, or when the recipient's receiving computer is not on-line, the secure document delivery system and method can send the private message directly between a sender and a recipient using a signaling mechanism, such as a traditional SMTP email message, for example, to notify a recipient that a message is waiting. The private message is placed in a folder on the home bridge appliance to await delivery to the recipient. The recipient's identity is verified with a protocol specified by the sender. The protocol can be a third party identify verification agent such as a private email registry and the like. Once the recipient is authenticated, the private email registry or other verification agent passes the location information and access instructions needed to receive the private message from the home bridge to the recipient.
Additionally, if the sending computer and the receiving computer happen to be members of the same peer network, additional signaling is not necessary, and the private message can be delivered directly over the encrypted line of the peer network. The direct delivery of the private message from the sending computer to the receiving computer is affected without a persistent copy of the message being stored on any intermediate devices. For example, the private message can be routed through a mail submission agent, a mail user agent, and/or a message relay server accessible to both the sending computer and the receiving computer, and none of these intermediate computers stores a copy of the message. The message persists only on the sending computer and the receiving computer. Pre-authorization of the sender can be used to establish a private direct-line to the receiving computer. When the sender is not authorized, a request for authorization can be sent to the receiving computer to grant the sender authorization.
Using these techniques, resilience patterns are opened up that increase the reliability of the direct transfer because the sender is able to send private documents from dynamic locations. A network registry can be used to track and to keep track of where the sender and receiver are located. For example, the network registry can track the IP addresses of the sending computer and receiving computer and their respective home bridge devices. Because the message itself is not stored at a third party agent (only the location of the message is stored) the contents of the message remain completely private. In addition, because the identity verification protocol can be specified by the sender, the third party agent does not know the identity of the recipient. The third party agent knows only that the recipient has passed an identity test or other verification test devised by the sender. Likewise, the third party agent will never know what content passes between the sender and the recipient.
An example private document delivery system includes a sending computer configured to transmit an electronic document over a computer network, a receiving computer, a home bridge appliance, and a dynamically established encrypted line to traverse the computer network from the receiving computer to the sending computer such that no third parties to the message receive a permanent copy of the message. The private document delivery system can also include a signaling mechanism configured to notify the receiving computer that the electronic document is waiting for delivery. The system can also includes a verification agent configured to verify the receiving computer's identity with a protocol specified by the sending computer and further configured to provide access instructions to the receiving computer. The receiving computer uses the access instructions to locate the sending computer via the dynamically established encrypted line and to receive the transmitted electronic document. The home bridge appliance can be used to hold the private message prior to delivering the message to the receiving computer.
One example of the private document delivery system performs a method of sending a message over a computer network that includes resolving the delivery address of the receiving computer at the time of transmission of the private message. An encrypted line is established from a receiving computer to a home bridge appliance of a sending computer, and the private message is transmitted from the home bridge appliance of the sending computer directly to the receiving computer over the encrypted line to the delivery address resolved at the time of transmission. The network location of the sending computer and/or the receiving computer is not resolved until the time the message is transmitted. That is, the exact network location of the receiving computer and/or the sending computer is not known to the other party until the private message is transmitted. The location of the sending computer is tracked by the network registry, which will locate the sender by using the sender's currently registered IP address. The sender (sending computer) is a member of the network and can use a user id and password as authentication means. Of course other types of information can also be used to authenticate the sending computer as a member of the network. If the sender moves, the sending computer software indicates a new sending computer (IP) address to the registry upon authentication. For example, when a message sender sends a message to a recipient, the message sender does not know where that recipient will be when he picks up the message. And when the recipient picks up the message, the recipient does not need to know the location of the sender when the sender transmitted the message. Additionally, the sending computer does not need to know when the receiving computer will pick up/receive the message. Likewise, the receiving computer does not need to know when the sending computer sent the message. That is, the time of transmission and/or receipt of the message may also be indeterminate. For example, a sender may wish to send a private message to a particular receiver. The sender composes the message and selects a secure method of transmission. When the sender composed the message, the sender (and the sending computer) did not know the network address of the receiving computer. However, when the receiver initiates the transmission of the private message, the sending computer employs the network registry and resolves the network address of the receiving computer, establishes an encrypted line from the receiving computer to the home bridge, and delivers the private message. The receiver clicks on the link and pulls the message across.
The method also includes dynamically establishing the encrypted line from the receiving computer to the sending computer whereby no third parties to the private message receive a permanent or persistent copy of the message.
In cases where the receiving computer is not on the same peer network as the sending computer, or if the sending computer determines that the receiving computer is not presently available to receive the message (for example, the receiving computer is not on-line), the method of sending the message over a computer network can also include the sending computer signaling the receiving computer to inform the receiving computer that a message is waiting for it. The private message can be placed on the home bridge to await delivery to the recipient. For example, the sending computer can signal the receiving computer that a message is waiting by notifying the receiving computer by email, instant message, short message service (SMS), and the like. Likewise, when the recipient is a member of the network, a flag can be set in the system registry to notify the receiving computer that a message is waiting on the home bridge to be delivered. When the receiving computer comes back on line, it checks for waiting messages and receives a response with a location of the waiting message.
The method of sending the message over a computer network can also include the sending computer specifying a manner of authenticating the receiver to ensure the message is delivered to the correct recipient at a receiving computer. For example, the sending computer can specify a manner of authenticating the receiver that includes a single use unique link that expires in a predetermined amount of time. The process can include verification of the receiver as well, and if the unique link expires, the sender can be required to send it to the receiver again. The predetermined amount of time for the link can include a fixed time period or an elapsed time or can be based upon other triggers, such as time periods related to particular events, times of day, days of week, and the like. The sending computer specifying the manner of authentication can also include specifying a password that must be communicated to the recipient. The password can be delivered to the receiving computer in a non-private message letting the receiving computer know that a message is waiting to be picked up. The delivery of the password can be performed by email, SMS, and the like (inline) and/or on a separate message from the sending computer. Additionally, the sending computer can specify a third party authentication protocol to be used to ensure the message is delivered to the correct recipient. For example, the authentication can be provided to the receiver via a phone call, a separate text message, and other out-of-band media.
The method of sending the message over a computer network can also include tracking the network location (such as an IP address, for example) of the sending computer by a presence monitoring tool running on the Internet. For example, presence monitoring can be employed to determine when and where the sending computer and/or the receiving computer were on-line or otherwise available to send and/or receive messages. Presence monitoring can be performed by tracking the IP or network address of the sending computer and/or the receiving computer. The presence monitoring tool can be a component of the sending computer, the home bridge appliances, and/or the receiving computer or can be a separate device that can determine the IP or network address of the sending and receiving computers.
Also, the method can include staging the message on a secure message delivery service. Further, the method of delivery of the message over a computer network can be effected by “waking up” the sending computer and/or the receiving computer using “Wake on” technology, such as Wake-on-LAN, Wake on Wireless LAN, and the like. The sending computer and the receiving computer can be on separate local networks with separate local firewalls, and delivering the message is accomplished by hole-punching in the sender's local network firewall and the recipient's local network firewall. Hole punching can be used to establish communications between a sending computer and/or a receiving computer that is behind a restrictive firewall. The sending computer and the receiving computer can establish a connection with an unrestricted (e.g., third-party) server that uncovers external and internal address information for the sending computer and the receiving computer. Since each client (e.g., the sending computer and the receiving computer) initiated the request to the server, the server knows their respective IP addresses and port numbers assigned for that session. The server then shares one to the other. Having valid port numbers causes the firewalls to accept the incoming packets from each side, and the sending computer and the receiving computer can be addressed in this fashion.
In order to facilitate the direct message transmission when sender and/or recipient are behind firewalls with Network Address Translation (NAT) or other filters or restrictions that prevent establishing a direct connection between the sender and recipient, the method of sending the message over a computer network can also include delivering the message via a third computer which is accessible to both the sender's computer and the recipient's computer. This third computer can act as a mail relay computer to forward the private message from the home bridge of the sending computer to the receiving computer without storing a persistent copy of the private message. The mail relay computer acts as an agent between the sender's peer network and the receiver's network. This can include using a mail submission agent, a mail user agent, a message relay server accessible to both the sender and the receiver, and the like. Additionally, the method can further include marshaling this computer on demand to perform the mail submission agent, mail user agent, and message relay server functions and the like. The marshaling can be performed on demand.
The method of sending the message over a computer network can also include integrating the private message transmission from the sending computer directly to the receiving computer into other non-private delivery mechanisms such as email clients, web email services, instant messaging services, and the like. As outlined below, this integration can include incorporating private message functionality through the use of new buttons or other user interface options in an existing email client, web email service, instant messaging service and the like. The integrated private messaging functions can be deployed in these existing programs using plug-in functionality or other applications for adding functionality to a host program or host user interface.
The method of sending the message over a computer network can also include the use of mobile and portable computing devices, such as where the sending computer, the home bridge, and/or the receiving computer are laptop computers, notebook computers, tablet PCs, Internet tablets, personal digital assistants, smart phones, cellular telephones, carputers, and the like. These mobile and portable computing devices can include wireless access to a public network such as the Internet. Additionally, these devices can include synchronization features, multimedia functionality, database functionality, and other computer features.
In one example, a computer readable medium has instructions stored on it for sending messages over a computer network. A computer readable medium of the claimed invention includes computer-readable instructions stored on it to cause at least one processor to perform steps of establishing a medium for private electronic document exchanges outlined in the methods described above. For example, one computer readable storage media of the claimed invention can also include computer-readable instructions for sending a private message over a computer network where the instructions are configured to cause one or more computer processors to execute operations including resolving a delivery address of a receiving computer at the time of transmission of the private message, establishing an encrypted line from the receiving computer to a home bridge appliance of a sending computer, and transmitting the private message from the home bridge appliance of the sending computer directly to the receiving computer over the encrypted line to the delivery address resolved at the time of transmission.
The computer readable storage media of the claimed invention can also include computer-readable instructions configured to cause one or more computer processors to execute operations including dynamically establishing the encrypted line from the receiving computer to a home bridge appliance of the sending computer whereby no third parties to the private message receive a permanent copy of the private message. Further, the time of transmitting the private message can be indeterminate.
The computer readable storage media of the claimed invention can also include computer-readable instructions configured to cause one or more computer processors to execute operations including determining when a recipient of the private message on a receiving computer is a member of a private messaging network. Further, the instructions on the computer readable storage media can cause a computer processor to signal the receiving computer, by the sending computer, that a private message is waiting. Signaling the receiving computer can include notifying the receiving computer by at least one of email, Instant message, or short message service (SMS) or can be effected by the sending computer setting a flag for the receiving computer in a system registry database to let the receiving computer know that a message is waiting for it. Further, the instructions can address the case where the sender is a member of the private messaging network and the receiving computer is a non-member of the private messaging network, and the receiving computer is notified through a non-private message to directly access the private message from the sending computer. Likewise, the instructions can address the case where the sending computer and the receiving computer are members of the same private messaging network and track their network location and online status.
The computer readable storage media of the claimed invention can also include computer-readable instructions configured to cause one or more computer processors to execute operations including specifying an authentication, by the sending computer, to ensure the private message is delivered to the correct receiving computer. For example, specifying the authentication can include the sending computer specifying a single use unique link that expires in a predetermined amount of time. Additionally, specifying the authentication can include the sending computer providing an authentication to the notified receiving computer with the non-private message indicating that a private message is waiting for the receiving computer to access. Likewise, the authentication provided to the receiving computer can include a password with which the receiving computer gains access to the waiting private message. Further, the authentication can include the sending computer providing an authentication to the receiving computer separate from the non-private message indicating that a private message is waiting for the receiving computer. When executed by at least one processor, the instructions on the computer readable medium cause a processor to execute operations including specifying, by the sender, a third party authentication protocol to be used to ensure the message is delivered to the correct receiver.
When executed by at least one processor, the instructions on the computer readable medium cause a processor to execute operations, including tracking a network location of the sending computer and/or the receiving computer at the time of transmission using a presence monitoring tool. The presence monitoring tool can be a component of the sending computer, the home bridge appliances, and/or the receiving computer or can be a separate device that can determine the IP or network address of the sending and receiving computers. The network location of the sending computer and/or the receiving computer can be communicated to other interested network members by the presence monitoring tool.
The instructions on the computer readable medium further cause the processor to execute operations including delivering the private message to a secure message delivery service when the receiving computer is unavailable. For example, if the receiving computer of the private message recipient is off-line or otherwise unavailable, a secure message delivery service that is on-line at all times can be employed so that delivery of the private message can be guaranteed.
When executed by at least one processor, the instructions on the computer readable medium cause a processor to execute operations including delivering the private message by waking up the sending computer using at least one of Wake-on-LAN and Wake on Wireless LAN. The sending computer and the receiving computer can be on separate networks with separate firewalls, and the message can be delivered by hole-punching in the sender's local firewall and the recipient's local network firewall.
The computer readable storage media of the claimed invention can also include computer-readable instructions configured to cause one or more computer processors to execute operations to deliver the private message by a mail submission agent, a mail user agent, and/or a message relay server accessible to both the sending computer and the receiving computer, where no persistent copy of the private message is saved on the mail submission agent, mail user agent, or message relay server. The computer readable storage media of the claimed invention can also include computer-readable instructions configured to cause one or more processors to marshal the mail submission agent, mail user agent, and/or message relay server on demand.
As outlined above, when executed by at least one processor, the instructions on the computer readable medium cause a processor to integrate the transmission of the private message from the sending computer directly to the receiving computer into a non-private delivery mechanism-including email clients, web email services, and/or instant messaging services. Of course, the computer readable storage media of the claimed invention can also include computer-readable instructions configured to cause one or more computer processors to execute these operations where the sending computer and/or the receiving computer are mobile devices connected to a public network.
In each of the examples, the sending computer and/or the receiving computers can include clients that can be run inside of a web browser or outside of a web browser, such as by a web server in a private network. In all these environments, electronic documents, electronic mail, data files, programs, information, and computing resources can be accessed by a software application and retrieved and presented. Information resources, including the sending and receiving computers, and the network(s) to which they are connected, can be traversed regardless of whether the software application is a web browser, email client, or other application. Additionally, the techniques and processes described in the examples can also be performed when clients and servers are connected to multiple networks as well.
These and other advantages, aspects, and features will become more apparent from the following detailed description when viewed in conjunction with the accompanying drawings. A number of non-limiting and non-exhaustive embodiments are described with reference to the following drawings. Accordingly, the drawings and descriptions below are to be regarded as illustrative in nature, and not as restrictive.
When a computer user wants to send a confidential electronic document to another computer user, transfer mechanisms and processes provide many points along the delivery route where the confidential or private document could be compromised. An intuitive system and method for delivering confidential electronic documents, such as e-mail messages, attachments, applications, and the like, that establishes a direct path from the sending computer to the receiving computer through an encrypted line provides increased security, as no third parties receive permanent copies of the documents.
The transfer can be performed dynamically so that the receiving computer need not be a member of the same peer network as the sending computer and can receive a notification with a link that establishes a direct connection to the sending computer. In this fashion, privacy is maintained as physical possession of the persisted data is held strictly with the sending computer and with the receiving computer. No copies of the electronic data are ever persisted with outside parties, so there is no need for encryption at rest, and therefore there is no need for any cumbersome exchanges of encryption keys between users.
Generally, sending computer 102 and receiving computer 104 can include any computing device capable of connecting to another computing device to send and receive information, including web-based information. These devices can include devices that typically connect using a wired and/or a wireless communications medium, such as personal computers, desktop computers, laptop computers, notebook computers, tablet PCs, Internet tablets, personal digital assistants, smart phones, cellular telephones, carputers, mobile phones, smart phones, personal digital assistants, and the like. These mobile and portable computing devices can include wireless access to a public network, such as the Internet. Additionally, these devices can include synchronization features, multimedia functionality, database functionality, and other computer features.
A system web client (not shown separately) is a mail and IM web client that provides a web interface for users away from their registered computers. The system web client can provide email and IM sending and receiving functionality via the network registry 162. Likewise, a system web IM Interface (not shown separately) provides an IM interface for users on computing devices that do not have or cannot have the system client installed. The system web IM interface can send and receive instant messages in conjunction with a system mail service.
The system mail service is a user-side service and interacts with the network registry 162. The system mail service interacts with the network registry 162 and provides system mail service registration functionality and user login capabilities in addition to providing communication for email plug-ins and other mail clients, such as Microsoft Outlook, Pegasus Mail, Mozilla Thunderbird, Apple Mail, JavaMail, GNU JavaMail, and the like. Additionally, an email plug-in (not shown separately) provides a user interface to send and receive electronic documents such as emails, instant messages, and the like.
In these examples, the computing devices can run web browsers that can provide an interface to make requests to different web server-based applications via the system 100. A series of web-based applications can run on the sending computer 102 and on the receiving computer 104 that facilitate the transmission of data. The sending computer 102 and the receiving computer 104 can be further configured to engage in a secure communication with other devices and/or each other using mechanisms such as Secure Sockets Layer (SSL), Internet Protocol Security (IPSec), Tunnel Layer Security (TLS), and the like.
As shown in
A process for delivering confidential electronic files using a computer system of
In block 203 of
The email plug-in 452 functionality can be added to the underlying email system of the user's sending computer 102 by installing computer readable instructions on a computer readable media (not shown separately) of the sending computer 102. As in the example above, the computer readable instructions can include plug-in functionality to add a “Send Secure” button to an email user interface screen on the sending computer 102 as well as the other functions and methods of the claimed invention. Of course, other techniques for adding this functionality can also be used.
Returning to
The network registry 162 checks to determine if both the sending computer 102 and the receiving computer 104 are members of the same peer network. When the sending computer 102 and the receiving computer 104 are members of the same private messaging network, they can track their network location and online status. For example, sending computer 102 and receiving computer 104 can track the network location and on-line status of the sending computer 102 and/or the receiving computer 104 at the time of transmission by using a presence monitoring tool in the home bridge appliance 130. The network registry check process to determine if both the sending computer 102 and the receiving computer 104 are members of the same peer network is also shown schematically in
If, however, the network registry 162 determines in block 209 that the receiving computer 104 is not a registered member of the private message delivery system (that is, the user of the receiving computer 104 is not a member of the network registry 162), the process continues to block 211. As shown schematically in
Once the notification is sent to the receiving computer 104, in block 4131 (block 213 in
Upon selection of the link in block 213, the system and method of the claimed invention determines if the private message requires verification in block 271 of
As also shown schematically in
Alternatively, when the system web client 464 contacts the system registry 462, the system registry 462 can provide an indication that the private message requires verification as determined in block 271 in
In this instance, in order to send the message directly between the sending computer 102 and a receiving computer 104, a signaling mechanism, such as signaling mechanism from network registry 462 is used to notify the recipient that a message is waiting for him. A third party agent, such as verification agent 410 is used to verify the recipient's identity with an authentication protocol specified by the sender. If it is determined above that verification is required in block 271, the process continues to block 273 where receiving computer information is sent to the verification agent, such as network registry 162, for authentication/verification. Additionally, user information (that is, information regarding the user(s) of the receiving computer) is also sent to the verification agent, such as network registry 162, for authentication/verification of the user, as a receiving computer can be used by multiple users. Additionally, the sending computer 102 can also act as a verification agent and provide verification criteria with which the receiving computer must comply. The network registry 162 or other verification agent determines in block 275 whether the receiving computer information passes the verification criteria. If the receiving computer information does not pass the verification criteria, the process stops. A “verification failure” or other message can be sent to alert the sending and receiving computers that activation of the link was unsuccessful. If, however, the receiving computer information passes the verification criteria in block 275, the process continues to block 215 whereby activation of the embedded link launches the system web client. This process is shown further in
In block 275, the system determines if the receiving computer information passes the verification criteria. If the receiving computer information does not pass the verification criteria, the process stops in block 277. If, however, the receiving computer information passes the verification criteria, the process continues to block 215. Likewise, if the system determined in block 271 that verification of the private message was not required (for example, if a direct connection between the would-be receiving computer and the sending computer can be established), the process proceeds directly to block 279.
Once authenticated, in block 215, the receiver activates an embedded link in the notification message to launch a system web client, and the verification agent 110 confirms that location information and access instructions are available for the receiving computer 104 to receive the private message. After the verification agent 110 verifies the authenticity of the recipient, it provides access instructions that allow the recipient to locate a dynamic sender in block 217, where the system web client contacts the network registry 162 (verification agent) to locate the sender or mail relay. These access instructions and link provide additional resilience patterns to increase reliability of the direct transfer because the sender is able to send from dynamic locations. Because the message itself is not stored at the verification agent 110 (only the location of the message) the contents of the message remain completely private. In addition, because the identify verification protocol may be specified by the sender, the third party verification agent 110 does not know who the recipient is—only that the recipient has passed an identity test devised by the sender. Also, the third party verification agent 110 will never know what content passes between sender and receiver.
After the system web client contacts the network registry 162 to locate the sender or mail relay in block 217, in block 279 of
Returning to block 209 of
The process of sending and receiving email with both the sending computer and the receiving computer registered with the network registry is further illustrated in conjunction with
If the receiving computer 104 is not on-line in block 231, the system will wait to deliver the confidential electronic document (private message 138) until the receiving computer 104 is back on-line as shown in block 237 of
Conventional store and forward telecommunications techniques store the electronic communication at an intermediate station, such as an email server or the like, and send the communication to the receiving computer at a later time. In the systems of the claimed invention, a high degree of privacy is achieved by maintaining physical possession of the electronic communication strictly with the home bridge and the receiver. No copies of the e-mail message or attachment(s) are persisted with outside parties, including intermediate stations. As such, there is no opportunity to intercept the confidential electronic communication by breaching the intermediate station.
When the receiving computer 104 is back on-line in block 239 of
For additional security and reliability in sending the message directly between a home bridge of the sending computer 102 and a receiving computer 104, a signaling mechanism can be used to notify the recipient on the receiving computer 104 that a message is waiting for him. The network registry 162 can be used to verify the recipient's identity with a protocol specified by the sender, and the network registry 162 can then pass the location information and access instructions needed to receive the private message to the receiving computer 104. This provides additional resilience patterns to increase reliability of the direct transfer because the sender is able to send from dynamic locations utilizing the home bridge 130. Because the message itself is not stored at the network registry 162 (only the location of the message) the contents of the message remain completely private.
For example, in block 243, the network registry 162 responds by providing a waiting message location response 146 with the location of the home bridge 130. The receiving computer 104 then sends a private message request 118 via computer network 199 to the home bridge 130 in block 245 and receives the private message 114 from the home bridge 130 in block 291 of
Delivering Confidential IM Messages
In block 5022, the sender's web based private IM page authenticates to the network registry 562. For example, the sending computer 102 can send a login( ) process to the network registry 562 to be authenticated. By providing authentication to the sending computer 102, the network registry 562 confirms that the user of the sending computer 102 is a registered user and is in compliance with any qualifications for using the system of the claimed invention.
In block 5033 the sender's web based private IM page notifies the network registry 562 that the sending computer 102 is on line. For example, the sending computer 102 can send a isRecipientOnline( )process to the network registry 562 to provide notification. In block 5044 the sender's web based private IM page uses the home bridge 502 of the sending computer 102 and receives the location of the system mail relay 566 of the receiver of the IM from the network registry 562. For example, the home bridge browser polls the relay and then receives the information from the relay. Once the home bridge 502 of the sending computer 102 has the location of the system mail relay 566 of the receiving computer 104, the home bridge 502 of the sending computer 102 then sends the private IM to the system mail relay 566 of the receiving computer 104 in block 5055. For example, the sending computer 102 can send a isRecipientOnline( ) process to the network registry 562 to provide notification. Once the system mail relay 566 receives the private IM from the home bridge 502 of the sending computer 102, the system mail relay 566 relays the IM to the home bridge 504 of the receiving computer 104 in block 5066, and the web based private IM page of the receiving computer 104 receives the private message.
Remote Browsing of Mailboxes on the Home Bridge
In the example of
When a P2P network mail user wishes to access his mail box(es) remotely, the user sends an authentication request 536 to the network registry 562 via computer network 199. The network registry 562 confirms that the user is registered and supplies the user at the temporary computer 1004 with a location message 539 providing the current location of the user's home bridge 530. The user then sends a message list request 546 to the home bridge 530. The home bridge 530 then provides the message list 549 to the user at the temporary computer 1004. The user at the temporary computer can then select a message to read by sending a request details message 556 to the home bridge 530, and the home bridge 530 can then provide the details of the private message 514 to the user at the temporary computer 1004. This allows a user to browse messages from their mailbox, including already-read and not-yet-read messages residing on the home bridge 530.
Sending a Message to a Receiver Behind a Firewall (SMS Not Supported)
When a mail sender is unable to send a private message directly due to network address translation (NAT) constraints and/or firewall constraints of the receiving computer, the user can send the private message based upon a process illustrated in
Sending a Message to a Receiver (SMS Supported)
Receiver and Sender Behind Firewalls (SMS Not Supported)
When a mail sender is unable to send a private message directly due to network address translation (NAT) constraints and/or firewall constraints of the sending computer and/or the receiving computer, the user can send the private message based upon a process illustrated in
The sending computer home bridge 1330 sets a relay message wait flag 1311 on a network notification service 1363. The network notification service 1363 can be a part of the network registry 1362 or can be a separate physical or virtual computer device. For clarity and brevity, network notification service 1363 is shown as a separate device in
The receiving computer home bridge 1334 periodically checks 1313 the network notification service 1363 to determine if any (relay) message wait flag 1311 has been set that would indicate a sending computer 1302 would like to deliver a private message to the receiving computer 1304. When the receiving computer home bridge 1334 finds that a (relay) message wait flag 1311 is set, the receiving computer home bridge 1334 uses the IP address of the relay home bridge 1360 from the (relay) message wait flag 1311 to determine the proper relay home bridge 1360 that has a message waiting to be delivered. The receiving computer home bridge 1334 then retrieves the private message from the relay computer home bridge 1360 in block 1315. Once the private message is retrieved, the receiving computer home bridge 1334 uses a remove (relay) message wait flag 1317 to remove the (relay) message wait flag 1311 from the network notification service 1363.
Sending computer home bridge 1330 periodically checks for a time out of the (relay) message wait flag 1311. If the private message is not delivered—that is, if the (relay) message wait flag 1311 is not removed within the time out period, the process can be repeated from the start.
Receiver and Sender Behind Firewall (SMS Not Supported—Streaming Relay)
As in the cases above, when a mail sender is unable to send a private message directly due to network address translation (NAT) constraints and/or firewall constraints of the sending computer and/or the receiving computer, the user can send the private message based upon a process illustrated in
The sending computer home bridge 6130 sets a relay message wait flag 6311 on a network notification service 6363. As above, the network notification service 6363 can be a part of the network registry 6362 or can be a separate physical or virtual computer device. For clarity and brevity, network notification service 6363 is shown as a separate device in
The receiving computer home bridge 6134 periodically checks 6313 the network notification service 6363 to determine if any (relay) message wait flag 6311 has been set that would indicate a sending computer 6302 would like to deliver a private message to the receiving computer 6304. When the receiving computer home bridge 6134 finds that a (relay) message wait flag 6311 has been set, the receiving computer home bridge 6134 uses the IP address of the relay home bridge 6160 from the (relay) message wait flag 6311 and requests a connection to relay home bridge 6160 at block 6315. When a connection is established, the sending computer home bridge 6130 sends the message to the receiving computer home bridge 6134 via relay home bridge 6160 at block 6666.
Once the private message is received, the receiving computer home bridge 6134 uses a remove (relay) message wait flag 6317 to remove the (relay) message wait flag 6311 from the network notification service 6363.
Sending computer home bridge 6130 periodically checks for a time out of the (relay) message wait flag 6311. If the private message is not delivered—that is, if the (relay) message wait flag 6311 is not removed by the receiver home bridge 6134 within the time out period, the process can be repeated from the start.
Receiver and Sender Behind Firewall (SMS Supported—Relay as Mail Box)
As in the cases above, when a mail sender is unable to send a private message directly due to network address translation (NAT) constraints and/or firewall constraints of the sending computer and/or the receiving computer, the user can send the private message based upon a process illustrated in
The sending computer home bridge 7330 sends an SMS message 7311 with the address of the relay home bridge 7360 to the receiving computer home bridge 7334. Using the address, the receiving computer home bridge 7334 retrieves the private message 7324 from the relay home bridge 7360.
If, for some reason, the receiving computer home bridge 7334 is unable to retrieve the private message from the relay home bridge 7360, in block 7326 the receiving computer home bridge 7334 will send an SMS message back to the sending computer home bridge 7330 indicating that the private message was not delivered. The SMS message can be an “email undelivered” message or the like. If the sending computer home bridge 7330 receives such a message, the process can be repeated from the start.
Receiver and Sender Behind Firewall (SMS Supported—Streaming Relay)
As in the cases above, when a mail sender is unable to send a private message directly due to network address translation (NAT) constraints and/or firewall constraints of the sending computer and/or the receiving computer, the user can send the private message based upon a process illustrated in
For example, when a user on sending computer 8302 is unable to send a private message directly, the sending computer 8302 provides the private message 8314 to the sending computer home bridge 8330. The sending computer home bridge 8330 sends a relay message request 8305 to the network registry 8362. The network registry provides a relay location 8307 to the sending computer home bridge 8330. The sending computer home bridge 8330 requests a connection on the relay home bridge 8360 in block 8309.
The sending computer home bridge 8330 sends an SMS message 8311 with the address of the relay home bridge 8360 to the receiving computer home bridge 8334. Using the address, the receiving computer home bridge 8334 requests a connection with relay home bridge 8360 in block 8315. A connection is established, and the receiving computer home bridge 8334 retrieves the private message 8324 from the relay home bridge 8360.
If, for some reason, the receiving computer home bridge 8334 is unable to retrieve the private message from the relay home bridge 8360, in block 8326 the receiving computer home bridge 8334 will send an SMS message back to the sending computer home bridge 8330 indicating that the private message was not delivered. The SMS message can be an “email undelivered” message or the like. If the sending computer home bridge 8330 receives such a message, the process can be repeated from the start.
Smart Phone Usage
As outlined above, the systems and methods of the claimed invention for sending confidential electronic messages over a computer network can also include the use of mobile and portable computing devices, including smart phones and other devices that can access data over Wi-Fi and cellular networks. These mobile computing devices can include wireless access to a public network such as the Internet and can serve as standalone home bridge devices and/or function as relays to provide home bridge functionality for other mobile computing devices.
For example, as was the case with registration of the home bridge device in
As shown in
As a smart phone moves from one physical location to another, it can gain access to different wireless networks and cellular networks provided in those physical locations. As outlined above, when a smart phone (computing device) is connected via a Wi-Fi network, it can function as a home bridge itself and function as a relay for other computing devices that are not directly addressable. As shown in
Whether a smart phone functions as a home bridge itself or relies upon another smart phone to function as a home bridge relay, confidential messages can be sent as shown in
Data Transmission Between Devices
As shown in the above examples, sending computer 102, receiving computer 104, home bridge 130, and network registry 162 in these examples can run interface applications such as web browsers and others that can provide an interface to make requests for (and send data to) different web server-based applications via the computer network 199. A series of applications and services can run on the sending computer 102, receiving computer 104, home bridge 130, and network registry 162 that allow the transmission of data requested by (alternatively) sending computer 102, receiving computer 104, home bridge 130, and network registry 162. The sending computer 102, receiving computer 104, home bridge 130, and network registry 162 can provide data or receive data in response to requests directed toward the respective applications on the respective sites. In accordance with the transmission control protocol (TCP), packets can be sent between any and all of the sending computer 102, receiving computer 104, home bridge 130, and network registry 162. The packets from the sending computer 102, receiving computer 104, home bridge 130, and network registry 162 can include requests for the transmission of data. It is to be understood that the applications and services on sending computer 102, receiving computer 104, home bridge 130, and network registry 162 can be hardware or software and that sending computer 102, receiving computer 104, home bridge 130, and network registry 162 can represent sites with a single computing device or with multiple computing devices, which can include internal or external networks. Further, additional computers, sites, and servers can be coupled to the computer network 199, and many different types of applications can be available on computers, sites, and servers coupled to the computer network 199.
Types of Computing Devices
Generally, client devices such as the sending computer 102, receiving computer 104, home bridge 130, and network registry 162 can include any computing device capable of connecting to another computing device to send and receive information, including web-based information. As outlined above, the set of such devices can include devices that typically connect using a wired and/or a wireless communications medium, such as personal computers, desktops, laptops, mobile phones and/or smart phones, and the like. In these examples, the client devices can run web browsers that can provide an interface to make requests to different web server-based applications via the computer network 199. A series of web-based applications can run on the sending computer 102, receiving computer 104, home bridge 130, and network registry 162 that allow the transmission of data requested by each other and by other computing devices. The sending computer 102, receiving computer 104, home bridge 130, and network registry 162 can be further configured to engage in a secure communication with other devices coupled to the computer network 199 including additional computers, sites, and servers. Additional secure communications can be effected using mechanisms such as Secure Sockets Layer (SSL), Internet Protocol Security (IPSec), Tunnel Layer Security (TLS), and the like.
In one example, the private document delivery system 100 includes sending computer 102, receiving computer 104, home bridge 130, and network registry 162, although the system 100 can include other types of private and public networks that include other devices. Communications, such as requests from sending computer 102, receiving computer 104, home bridge 130, and network registry 162 and responses from each take place over the computer network 199 according to standard network protocols, such as the HTTP and TCP/IP protocols, but the principles discussed are not limited to this example and can include other protocols.
Further, the system 100 can include local area networks (LANs), wide area networks (WANs), direct connections and any combination thereof, other types and numbers of network types, including peer-to-peer networks, for example. On an interconnected set of LANs or other networks, including those based on different architectures and protocols, routers, switches, hubs, gateways, bridges, and other intermediate network devices can act as links within and between LANs and other networks to enable messages and other data to be sent from and to network devices. Also, communication links within and between LANs and other networks typically include twisted wire pair (e.g., Ethernet), coaxial cable, analog telephone lines, full or fractional dedicated digital lines including T1, T2, T3, and T4, Integrated Services Digital Networks (ISDNs), Digital Subscriber Lines (DSLs), wireless links including satellite links and other communications links known to those skilled in the relevant arts. In essence, the computer network 199 includes any communication medium and method by which data can travel between sending computer 102, receiving computer 104, home bridge 130, and network registry 162, and these example configurations are provided by way of example only.
Description of Computer Components
Each of the sending computer 102, receiving computer 104, home bridge 130, and network registry 162 can include a central processing unit (CPU), controller or processor, a memory, and an interface system which are coupled together by a bus or other link, although other numbers and types of each of the components and other configurations and locations for the components can be used.
As shown further in
System processor 820 includes one or more microprocessors configured to execute computer/machine readable and executable instructions stored in system memory 822 to implement automatic sending and receiving of confidential electronic documents on a client server network system, such as system 100, for example. When executed by at least one processor, the instructions stored in system memory 822 cause the processor 820 to automatically send and receive confidential electronic documents. The instructions on the computer readable medium, including system memory 822, further cause the processor 820 to perform steps including sending a confidential electronic document between a sending computer 102 and a receiving computer 104.
The system processor 820 is configured to execute computer/machine readable and executable instructions stored in system memory 822 to implement one or more portions of the processes described above and further below in connection with
System memory 822 includes computer readable media, namely computer readable or processor readable storage media, which are examples of machine-readable storage media. Computer readable storage/machine-readable storage media can include volatile, nonvolatile, removable, and non-removable media implemented in any method or technology for storage of information, such as computer readable/machine-executable instructions, data structures, program modules, or other data, which can be obtained and/or executed by one or more processors, such as system processor 820, to perform actions, including implementing an operating system for controlling the general operation of confidential electronic document computing device 810 to automatically send a confidential electronic document in accordance with the processes described above in connection with
Examples of computer readable storage media include RAM, BIOS, ROM, EEPROM, flash/firmware memory or other memory technology, CD-ROM, digital versatile disks (DVD) or other optical storage, magnetic cassettes, magnetic tape, magnetic disk storage or other magnetic storage devices, or any other medium which can be used to store the desired information, including data and/or computer-executable instructions or other machine-executable instructions, and which can be accessed by a computing or specially programmed device, such as confidential electronic document computing devices 810. When the instructions stored in system memory 822 are run by the system processor 820, the confidential electronic document computing device 810 implements at least a portion of the processes described further below to send confidential electronic documents in connection with
System I/O interface(s) 824 includes one or more user input and output device interface mechanisms, such as a computer keyboard, mouse, display device, and the corresponding physical ports and underlying supporting hardware and software to enable the confidential electronic document computing devices 810 to communicate with the outside environment for accepting user data input and to provide user output, although other types and numbers of user input and output devices can be used. Alternatively or in addition, as will be described in connection with network interface controller 826 below, the confidential electronic document computing devices 810 can communicate with the outside environment for certain types of operations (e.g., configuration) via a network management port, for example.
Network interface controller 826 provides physical access to a networking medium and provides a low-level addressing system, which enables the confidential electronic document computing devices 810 to engage in TCP/IP communications over network system 100 (shown in
In one example, the network interface controller 826 is an FPGA that can include a local memory and be configured with logic to implement one or more aspects of the technology, including by way of example only, automatically sending and receiving confidential electronic documents, although the network interface controller 826 can include other types of configurable hardware, such as digital signal processors, micro-controllers, ASICs, PLDs, FPLDs, and the like, programmed or configured according to the teachings as described and illustrated herein with respect to
Bus 830 includes at least one internal device component communication bus, link, bridge and supporting components, such as bus controllers and/or arbiters. These devices enable the various components of the confidential electronic document computing device 810, such as the system processor 820, system memory 822, system I/O interface 824, and network interface controller 826, to communicate, although the bus 830 can enable one or more components of the confidential electronic document computing device 810 to communicate with components in other devices as well. By way of example only, example buses include HyperTransport, PCI, PCI Express, InfiniBand, USB, Firewire, Serial ATA (SATA), SCSI, IDE and AGP buses, although other types and numbers of buses can be used, and the particular types and arrangement of buses will depend on the particular configuration of confidential electronic document computing device 810.
While each of the computers and verification agent can include the processor 820, memory 822, network interface controller 826, and I/O interface 824 coupled together by a bus 830, two or more computing systems or devices can be substituted for any one of the devices in the system 100. Accordingly, principles and advantages of distributed processing, such as redundancy, replication, and the like, also can be implemented as desired to increase the robustness and performance of the devices and systems of the system 100. The system 100 can also be implemented on a computer system or systems that extend across any network environment using any suitable interface mechanisms and communications technologies including, for example telecommunications in any suitable form (e.g., voice, modem, and the like), Public Switched Telephone Network (PSTNs), Packet Data Networks (PDNs), the Internet, intranets, a combination thereof, and the like.
As outlined above, each of the client computers, sites, and servers can include a central processing unit (CPU), controller or processor, a memory, and an interface which are coupled together by a bus or other link, although other numbers and types of each of the components and other configurations and locations for the components can be used. The processors in the computing devices can execute a program of stored instructions for one or more aspects of the methods and systems as described herein, although the processor could execute other types of programmed instructions. The memory can store these programmed instructions for one or more aspects of the methods and systems as described herein, although some or all of the programmed instructions could be stored and/or executed elsewhere. A variety of different types of memory storage devices, such as a random access memory (RAM) or a read only memory (ROM) in the system or a floppy disk, hard disk, CD ROM, DVD ROM, or other computer readable medium which is read from and/or written to by a magnetic, optical, or other reading and/or writing system that is coupled to the processor, can be used for the memory. The user input device can include a computer keyboard and a computer mouse, although other types and numbers of user input devices can be used. The display can include a computer display screen, such as a CRT or LCD screen by way of example only, although other types and numbers of displays could be used.
Although an example of the confidential electronic document computing devices 810 are described and illustrated in connection with
Further, each of the devices of the system 100 can be conveniently implemented using one or more general purpose computer systems, microprocessors, digital signal processors, micro-controllers, application specific integrated circuits (ASIC), programmable logic devices (PLD), field programmable logic devices (FPLD), field programmable gate arrays (FPGA) and the like, programmed according to the teachings as described and illustrated herein, as will be appreciated by those skilled in the computer, software, and networking arts.
The operation of example processes to provide a system and method of delivering confidential electronic files shown in
By performing a method of delivering confidential electronic files using a system described above, if a sender wishes to send a confidential electronic document, such as an email, message, document, or attachment, a direct path for the transmission and reception of the restricted electronic document is accomplished and the document is delivered securely.
Having thus described the basic concept of the invention, it will be rather apparent to those skilled in the art that the foregoing detailed disclosure is intended to be presented by way of example only, and is not limiting. Various alterations, improvements, and modifications will occur and are intended to those skilled in the art, though not expressly stated herein. These alterations, improvements, and modifications are intended to be suggested hereby, and are within the spirit and scope of the invention. Additionally, the recited order of processing elements or sequences, or the use of numbers, letters, or other designations therefore, is not intended to limit the claimed processes to any order except as can be specified in the claims. Accordingly, the invention is limited only by the following claims and equivalents thereto.
Claims
1. A method of sending a private message over a computer network comprising:
- storing an outbound private message in a home bridge of a sending computer;
- requesting confirmation from a network registry that a receiving computer is a member of the computer network;
- receiving location information of the receiving computer from the network registry upon confirmation that the receiving computer is a member of the computer network;
- receiving on-line status information of the receiving computer from the network registry;
- sending a message waiting notification to provide notice to the receiving computer that a private message is awaiting when the received on-line status of the receiving computer indicates that the receiving computer is unavailable; and
- delivering the private message from the home bridge to the receiving computer when the receiving computer becomes available.
2. The method of claim 1, wherein the home bridge is a personal digital mailbox under control of a user of the sending computer.
3. The method of claim 1, wherein the home bridge is one of a plug computer, a personal computer, or a server.
4. The method of claim 1, wherein the home bridge stores outbound private messages from a plurality of sending computers.
5. The method of claim 1, wherein delivering the private message from the home bridge of the sending computer to the receiving computer includes storing the private message on a home bridge of the receiving computer.
6. The method of claim 5, wherein the home bridge of the receiving computer stores private messages for delivery to a plurality of receiving computers.
7. The method of claim 1, wherein the home bridge is a smart phone or a tablet computer.
8. The method of claim 7, wherein the message waiting notification is sent via at least one of short message service (SMS), email, or Instant Message (IM).
9. The method of claim 8 further comprising:
- waking up the home bridge to affect delivery of the private message using at least one of Wake-on-LAN and Wake on Wireless LAN.
10. The method of claim 1, wherein delivering the private message from the home bridge directly to the receiving computer occurs when the sending computer is not on-line.
11. The method of claim 1, wherein the private message is composed using at least one of a non-private email client, a non-private web mail service, and a non-private instant messaging service.
12. The method of claim 1, wherein storing the outbound private message in the home bridge device includes selecting an email client plug-in to automatically place the outbound private message on the home bridge appliance.
13. The method of claim 1 further comprising:
- delivering a notification message to the receiving computer including an embedded link from the network registry that, when activated, locates the home bridge that has the private message;
- receiving a private message request upon activation of the embedded link; and
- delivering the private message to the receiving computer.
14. The method of claim 13 further comprising:
- receiving at least one of receiving computer verification information and receiving user verification information; and
- verifying at least one of receiving computer verification information and receiving user verification information meets verification criteria in at least one of the network registry and the sending computer.
15. The method of claim 1 further comprising:
- forwarding the outbound private message with a relay home bridge when the receiving computer is not directly addressable.
16. The method of claim 15 further comprising:
- assigning the relay home bridge using a central relay registry.
17. The method of claim 15 further comprising:
- temporarily storing the private message in the relay home bridge.
18. The method of claim 15 further comprising:
- streaming the private message from the home bridge of the sending computer to the relay home bridge without storing the private message; and
- streaming the private message from the relay home bridge to a home bridge of the receiving computer.
19. The method of claim 1, wherein delivering the private message includes:
- hole punching a firewall of the receiving computer when the receiving computer is not directly accessible.
20. The method of claim 1, wherein delivering the private message includes:
- storing the private message in a receiver home bridge remotely accessible by a user from other network locations.
21. The method of claim 1 further comprising:
- determining when a recipient of the private message on a receiving computer is a member of the private computer network.
22. The method of claim 21, wherein the sending computer is a member of the private messaging network and the receiving computer is a non-member of the private messaging network, and the receiving computer is notified through a non-private message to directly access the private message from the home bridge of the sending computer.
23. The method of claim 22, further comprising:
- specifying an authentication, by the sending computer, to ensure the private message is delivered to the correct receiving computer.
24. The method of claim 23, wherein specifying the authentication includes the sending computer specifying a single use unique id which expires in a predetermined amount of time.
25. The method of claim 23, wherein the authentication includes the sending computer providing an authentication to the receiving computer separate from the non-private message indicating that a private message is waiting for the receiving computer.
26. The method of claim 23, wherein specifying the authentication includes the sending computer providing an authentication to the receiving computer notified with the non-private message indicating that a private message is waiting for the receiving computer to access.
27. The method of claim 26, wherein the authentication provided to the receiving computer includes a password with which the receiving computer gains access to the waiting private message.
Type: Application
Filed: Apr 12, 2012
Publication Date: Oct 18, 2012
Inventors: Igor SLEPININ (West Hartford, CT), Clifford F. BOYLE (Scottsdale, AZ), Robert E. MCGILL (Rumson, NJ)
Application Number: 13/445,188
International Classification: G06F 15/16 (20060101);